The Information Security Oversight Office (ISOO), a component of the National Archives that receives program and policy guidance from the National Security Staff at the White House, is responsible for policy and oversight of the Government-wide security classification system and the National Industrial Security Program. ISOO receives authority from:
- Executive Order 13526, Classified National Security Information (Dec. 29, 2009).
- Executive Order 12958, Classified National Security Information (Apr. 17, 1995), as amended.
- Executive Order 12829, National Industrial Security Program (Jan. 6, 1993), as amended by Executive Order 12885.
ISOO is a component of the National Archives and Records Administration (NARA) and receives policy and program guidance from the National Security Council (NSC). ISOO oversees the security classification programs in both Government and industry and reports annually to the President on their status.
ISOO has three components:
- The Classification Management Staff: Develops security classification policies for classifying, declassifying and safeguarding national security information generated in Government and industry.
- The Operations Staff: Evaluates the effectiveness of the security classification programs established by Government and industry to protect information vital to our national security interests.
- The Controlled Unclassified Information (CUI) Office: Develops standardized CUI policies and procedures that appropriately protect sensitive information through effective data access and control measures.